<[email protected]> wrote: > I wrote: > >> How do I use a hardware random number generator to > >> continuously seed /dev/random with new truly random numbers? > > --- Theo de Raadt wrote: > > We consider these devices boring, because the kernel does a good enough job > > creating random. > > randomness only has a bootstrap problem. And these devices don't solve the > > bootstrap problem. > > I'm thinking of headless servers, where randomness can ONLY come > from the network. There is no keyboard, no mouse, etc.
Incorrect. > I'm also thinking of first boot after install, when keys are generated. Incorrect. We have ways. > I think that is what you mean by the bootstrap problem. Sorry, we want randomness before usb is working. > PS I'm also thinking of very old hardware, without RDRAND in the CPU. > Not to mention that you can't necessarily trust RDRAND! I'm not thinking of machines with or without rdrand. And I don't give a rats ass about a cheap-ass garbage usb device that can't even afford to allocate a proper usb device ID. I don't care.
